Wireless Access

Reply
Contributor II

Aruba Controller 6.4 HA via LMS + Central Licensing

Hi to all,

 

   We are currently testing the behaviour of Aruba Controller 6.4 in our LAB, our setup is Contrller 1(192.168.1.12) as Production and Controller 2(20.20.20.2) as DR as simulation environment.

 

 we are able to execute FastFailover with both controllers as Master with licenses each.

 

1.as per guide, both controllers must have same config. does it require identical config like both must have same VLAN for AP (via internal DHCP for AP discovery) ?

 

2. how about the users? once APs failover to controller 2, can users be able to access the internal network of production?

 

3. will there be any ipsec tunnel in between controllers? or AP to controller only?

 

we are quite new to this HA FastFailover, any recommendations, will be greatly appreciated.

 

 

Guru Elite

Re: Aruba Controller 6.4 HA via LMS + Central Licensing


harveyysip wrote:

Hi to all,

 

   We are currently testing the behaviour of Aruba Controller 6.4 in our LAB, our setup is Contrller 1(192.168.1.12) as Production and Controller 2(20.20.20.2) as DR as simulation environment.

 

 we are able to execute FastFailover with both controllers as Master with licenses each.

 

1.as per guide, both controllers must have same config. does it require identical config like both must have same VLAN for AP (via internal DHCP for AP discovery) ? Make the second controller a local and it will have a copy of the global configuration.  It will also participate in centralized licensing automatically.  The "identical config" is only so that the user has the same experience during failover.  99% of people make the second controller a local, and the global config is the same.  You can use VLAN names in the Virtual AP that represent different VLANs on each controller.  During fast failover, clients are deauthed, so they will acquire the new ip address range, if needed.

 

2. how about the users? once APs failover to controller 2, can users be able to access the internal network of production?

 They should be able to.  During failover, all users are deauthed, so they will acquire a new ip address, if needed.

3. will there be any ipsec tunnel in between controllers? or AP to controller only?  If that second controller is a local, it will have an ipsec tunnel to a master.  APs have an active and standby tunnel to the two controllers they will be contacting.

 

we are quite new to this HA FastFailover, any recommendations, will be greatly appreciated.

 

 


 


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.3 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Contributor II

Re: Aruba Controller 6.4 HA via LMS + Central Licensing

Hi Cjoseph, 

 

  Thank you very much for your response.

 

we are simulating these 2 controllers in an "over WAN setup".

 

a. what will happen if the Prod Controller goes down? 

b. can we still implement  Master-local central licensing over WAN(L3) ?

c. will DR controller be able to manage the failover APs?

d.can users be able to reach the Prod apps once they get new I.Ps from DR controller? *while Prod Controller is down*

e. is there a need for a switch like Aruba MAS that is capable of aruba GRE tunnel?

 

 

thank you very much!

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: